# Managed by puppet

################################################################################
# HTTP section


#
# No HTTP is available on this VHost - redirecting to HTTPS
#
<VirtualHost *:80>
  ServerName hotel.stwalkerster.co.uk

  ServerAdmin webmaster@hotel.stwalkerster.co.uk

  DocumentRoot /var/www/stwalkerster/hotel.stwalkerster.co.uk
  <Directory /var/www/stwalkerster/hotel.stwalkerster.co.uk>
    Options none
    AllowOverride none
    Require all denied
  </Directory>
  ErrorLog /var/log/apache2/hotel.stwalkerster.co.uk_error.log
  LogLevel warn
  CustomLog /var/log/apache2/hotel.stwalkerster.co.uk_access.log combined
  ServerSignature Off
  
  Redirect permanent / https://hotel.stwalkerster.co.uk/
  
  
  # disable php
  php_value engine off
  
</VirtualHost>


################################################################################
# HTTPS section

<VirtualHost *:443>
  ServerName hotel.stwalkerster.co.uk

  ServerAdmin webmaster@hotel.stwalkerster.co.uk

  DocumentRoot /var/www/stwalkerster/hotel.stwalkerster.co.uk
  <Directory /var/www/stwalkerster/hotel.stwalkerster.co.uk>
    Options 
    AllowOverride 
    Require all granted
    
  </Directory>
  ErrorLog /var/log/apache2/hotel.stwalkerster.co.uk_error.log
  LogLevel warn
  CustomLog /var/log/apache2/hotel.stwalkerster.co.uk_access.log combined
  ServerSignature Off

  SSLEngine on

  
  # Let's Encrypt
  SSLCertificateFile      /etc/letsencrypt/live/hotel.stwalkerster.co.uk/cert.pem
  SSLCertificateChainFile /etc/letsencrypt/live/hotel.stwalkerster.co.uk/chain.pem
  SSLCertificateKeyFile   /etc/letsencrypt/live/hotel.stwalkerster.co.uk/privkey.pem
  
  
  # strict transport security
  
  Header always set Strict-Transport-Security "max-age=15768000;"
  
  
  # includefile
  
  
  # specials
  SetEnvIfNoCase ^Authorization$ "(.+)" HTTP_AUTHORIZATION=$1

<FilesMatch \.php$>
    SetHandler "proxy:fcgi://127.0.0.1:30001/"
</FilesMatch>

  
  
  # disable php
  php_value engine off
  
</VirtualHost>